Method of distributing client certificates to machines with shared cloud account access

Assignee

• VMware LLC · US

Inventors

• Chen Dar · Magshimim, IL
• Aran Bergman · Givatayim, IL
• Alex Markuze · Ramat Gan, IL
• Israel Cidon · San Francisco, US
• Eyal Zohar · Shimshit, IL
• Igor Golikov · Kfar Sava, IL

Key dates

Classification

• Technology area (CPC G)Physics
• CPC primaryG06F2009/45595
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

Some embodiments provide a method for providing a resource to a particular virtual private cloud that is deployed in a set of datacenters that host multiple virtual private clouds. At a resource issuer, the method receives a resource request from a particular machine deployed in the particular virtual private cloud, the resource request including a first set of cloud-specific data. The method obtains a cloud identifier for the particular machine from a registry service of the particular virtual private cloud that interacts with a datacenter-set cloud service that deploys machines in the datacenter set for different virtual private clouds. The method uses the obtained cloud identifier to obtain a second set of cloud-specific data for the particular machine from the datacenter-set cloud service. Upon determining that the first and second sets of cloud-specific data match, the method authenticates the particular machine and issues the resource for the particular machine.